Develop and implement data protection strategies, including encryption, access controls, and data masking techniques to safeguard sensitive information.
Ensure compliance with relevant data protection laws and regulations, such as GDPR, CCPA, HIPAA, and others, by conducting regular audits and assessments.
Evaluate and implement cybersecurity tools and practices to detect and mitigate security threats and vulnerabilities.
Conduct risk assessments and security audits to identify potential risks and develop mitigation strategies.
Collaborate with development and operations teams to integrate security into the software development lifecycle (SDLC).
Provide guidance and training to staff on security best practices and procedures.
Stay updated with the latest trends and developments in cybersecurity, data protection, and privacy laws.
Requirements:
Bachelor's degree in Computer Science, Information Security, or related field.
Proven experience 5 years in data protection, privacy laws, and cybersecurity.
Deep understanding of risk assessment methodologies and security protocols.
Knowledge of cloud security practices, with experience in at least one major cloud platform (GCP, AWS, Azure, Oracle).
Familiarity with big data environments and security challenges associated with them.
Experience with cybersecurity tools and practices, including SIEM, IDS/IPS, endpoint security, etc.
Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to non-technical stakeholders.